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Electrohic transaction system and a transaction terminal adapted for such a 
system 

Field. of the invention 

5 the invention relates to electronic transaction systems and transaction terminals 
adapted to perform electronic transaction. An electronic transaction is for example a 
payment transaction enabling payment of goods at a merchant store or a healthcare 
transaction enabling a patient to recover fees paid at the doctor, borrowing a book in a 
libriary etc... 
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Background of the invention 

The piayment terminal market is experiencing a price war, and at the same time due to 
the Eu repay MasterCard Visa EMv migration, new functionality are required. Further, 
thfe telebommunication environment is changing the global architecture of the 
15 triansactiori scherhe. 

Today, a transaction terminal has all the capabilities and resources to handle a 
transaction, namely : a PIN pad (keyboard for entering the user Personal Identification 
Nurhfcyfer), a printer, a display, a card reader (either magnetic stripe card or 
2b fnicroprocessor card), processing power and memory. 

The features required from the transaction terminal are more and more resource 
demanding. The result is that the processing power and the memory size need to be 
increiased. At the same time the security specifications become more and more severe. 

25 

bbiect and summarv of the invention 

Therefore it is an object of the present invention to provide an electronic transaction 
system and a transaction terminal adapted for such a system that overcomes the at 
least one shortcoming of the prior art methods and terminals. 

30 

The idea of the invention is to leverage on the capabilities of the telecommunication 
network, mobile telecommunication industry and the fact that processing power is more 
and more available (e.g. on personal computer PC, personal digital assistant PDA, 
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mobile phone, or telecommunication router, etc..)- According to the invention, instead of 
having all the resources in one terminal, the resources are distributed as follows : 

1) a secured human interface module (Secured PIN Entry Device: SPED) comprising a 
display, a keypad, a smart card reader and/or a magnetic card reader and possibly a 

\ 5 printer, 

2) an electronic scheduler (e-scheduler), for example analog to Subscriber Identity 
Module SIM based, comprising a transaction terminal task manager, ciphering means 
and merchant contract nfianagement means (identification, fees, etc.), 

3) a hosting device (PC, mobile phone, PDA, etc ...) having processing means, memory 
10 arid communication means, and 

4) a gateway in the network or a remote server connectable to a service provider (of a 
bank or a financial institution, of a healthcare institution, etc.,.)- 

The gateway have different functionality, for example : 
15 , - transla:tion of protocols compliant with bank or healthcare institution (message format), 

- transaction uploading, 

r parameter downloading, 

- aipplicatibn boot downloading, 

- floor iimit rnahagfement (i.e. a level requiring an aLUthorization for processing the 
20 trans^ion) bii^ card hblde^^ 

- datk rhiriing^^d^^ programs, data consolidatioh for multilane merchant 
afDpiications, local black, gray,., list management, etc.), 

^ secure corn munication with the e-scheduler. 

25 Due to the significant decrease of the telecommunication cost, the system according to 
the invention enables a substantial cost reduction of the price of the transaction 
terminal. 

Brief description of the drawings 

30 The following detailed description, given by way of example, will be best understood 
with the accompanying drawings in which : 

- Figure 1 represents schematically an electronic transaction system according to the 

invention, 
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- Figure 2 illustrates a particular embodiment of a transaction terminal adapted for a 
system according to the invention, and 

- Figure 3 illustrates different embodiments of a hosting device in an electronic 
transaction system according to the invention. 

5 . 

Detailed description of the invention 

An example of payment transaction involving for example a mobile phone (e.g. 
corhpliant with GSM) will be described in more details in relation with Figure 1 . A human 
interface module SPED is connected by a wire or a wire-less connection C1 to a hosting 

10 terminal HT, for example a mobile phone, the hosting terminal HT enables to 
communicate with an application host or virtual terminal server VTS through an existing 
public or private telecommunication network TN. The virtual terminal server VTS is 
further abl6 to communicate by adapted communication means and networks C2 with 
the irifdrmatioh processing systems of bank(s) BH. 

15 The human interface module SPED comprises a keypad KP, a display D, a card reader 
- dR, a processing means MP connected to each other by an internal bus B. The human 
interface module SPED can also comprise a printer P. Advantageously, the human 
interlace module SPED is secured in the sense that it is tamper evident or tamper proof. 
This means that a user is able to know (for example by seeing that the module was 

20 broken) when a fraud tentative to get his PIN Is going to occur. 

The hosting terminal HT is equipped with a security module or e-scheduler ES. The 
security module ES is comparable to a Subscriber Identity Module SIM card as currently 
used in the field of mobile telephony. The hosting means HT is connectable to the 
human interface module SPED through connection means CI. The processing means 

25 and the memory HTR of hosting means can be used by the scheduler means ES for 
helping in performing various task. The hosting means HT also comprises 
communication rneans CR for exchanging data using the telecommunication network 
TN. A power supply either internal PS, e.g. a battery or external EPS, e.g. electricity 
network are a source of energy to the hosting terminal HT and also to the human 

30 interface module SPED. 

The payment terminal comprises the hosting terminal, i.e. the mobile phone, the human 
interface module SPED and the security module ES. The payment terminal performs 
the phases of the transaction which involves directly the following actors : the merchant 
who need to be paid for goods sold or services offered and the customer carrying the 
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means of payment (a bank or a credit card). The transaction phases comprises the 
, entry of the amount to be paid with the keypad KP, reading and authentication of the 
bank or credit card through the card reader CR and the processing means MP, entry of 
. the PIN code through the keypad KP, displaying of the instruction to be followed on the 
5 display D, possibly editing of payment ticket with the printer P. The human interface 
module SPED executes these transaction phases under the e-scheduler ES control. 
However, the human interface module SPED executes totally autonomously the 
treatments regarding security (display the message asking for PIN code entry, entry of 
this PIN code, presentation of the PIN code to the card, generation of the ciphered PIN 
10 data....)- 

The communication between the human interface module SPED and the e-scheduler 
. ES through the mobile phone is secured by ciphered data exchange. The cryptographic 

keys are generated uniquely after a mutual identification of the human interface module 

SPED and the e-scheduler ES. 
15 In ah analogous way, the communication between the virtual terminal server VTS and 

the e-scheduier ES through the mobile phone HT and the telecommunication network 

TN is siecured by niutual identification proceeding and the used of cryptographic keys. 

The virtual termihal server VTS can comprise a security module EL (e-link) analog to a 

SIM card, the security module EL can be in relationship with one or more e- 
20 scheduler(s). The main task of the security module EL is to allow a secure 

GbmnriUhication of data between the virtual terminal server VTS and the hosting terminal 

HT (in the present example the mobile phone). 

The e-scheduler uses its host HT (in the present example the mobile phone) to store 
bulky data without any security requirements connection : e.g. fonts definition, printing 

25 format, etc.... The e-scheduler ES and the virtual terminal server VTS contributes to 
carry out in a distributed way an equivalent of a payment transaction currently carried 
out dh a point-of-sale or payment terminal, A virtual terminail can be seen when 
considering the addition of all the functionality of the human interface module SPED, the 
hosting terhiinal HT including the e-scheduler ES and the virtual terminal server VTS 

30 including the security module e-link EL. 

The scheduler means ES is specific to the electronic transaction application to be 
performed for example a banking application, or a healthcare application, etc... 
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Figure 2 shows a particular embodiment of a transaction terminal adapted for a system 
according to the invention in which the human interface module SPED and the hosting 
tierminal HT are grouped in one device ATB. This device can be a specific device which 
include all the functionality of the human interface module SPED and the hosting 
terminial HT. Alternatively, it can also be for example a personal computer PC, a 
personal digital assistant PDA, or a mobile phone In all these examples, 
aidvantageously, the device is tamper evident or tamper proof, so that a user knows 
when a fraud tentative to get the user PIN is occurring. 

Figure 3 shows schematically different embodiments of a hosting device in an electronic 
transaction system according to the invention, from top to down of the Figure a persdnal 
computer PC, a network hub HUB, a personal digital assistant PDA, and a mobile 
phonfe Mj respectively. The links shown on the Figure between the different 
devicfes/systeitis/termirials can be wired or wireless. The e-scheduler ES and the 
. security nriodulie e-link EL are inserted or connected into the riespective devices in an 
appropriate maihner knbwn by the man skilled in the art. 

With tHe systisfti 6f the invention, it is possible to cheaply adapt the whole system to 
different type of electronic transaction banking, healthcare, library... simply by changing 
the scheduler rheahs ES. Also it is possible to use the resources where they are already 
avaiiablei e.g. the hosting terminal or the virtual terminal server (the gateway) while 
having a basic and chiBap but secure human interface module. 



